<?php

/**
 * UserIdentity represents the data needed to identity a user.
 * It contains the authentication method that checks if the provided
 * data can identity the user.
 */
class UserIdentity extends CUserIdentity
{
	/**
	 * Authenticates a user.
	 * The example implementation makes sure if the username and password
	 * are both 'demo'.
	 * In practical applications, this should be changed to authenticate
	 * against some persistent user identity storage (e.g. database).
	 * @return boolean whether authentication succeeds.
	 */
    
    public $userType = 'FrontEnd';
    
	public function authenticate()
	{
        if($this->userType == 'FrontEnd') {
            $record = User::model()->findByAttributes(array('email' => $this->username));
            if($record === null) {
                $this->errorCode = self::ERROR_USERNAME_INVALID;
            }
            else if($record->password !== $this->genPassword($this->password)) {
                $this->errorCode = self::ERROR_PASSWORD_INVALID;
            }
            else {
                $this->setState('id', $record->id);
                $this->setState('email', $record->email);
                $this->setState('fullname', $record->fullname);
                $this->errorCode = self::ERROR_NONE;
            }
            return !$this->errorCode;
        }
        
        if($this->userType == 'BackEnd') {
            $record = User::model()->find(array(
                'condition' => 'email = :email AND role = :role',
                'params' => array(
                    ':email' => $this->username,
                    ':role' => 1,
                ),
            ));
            if($record === null) {
                $this->errorCode = self::ERROR_USERNAME_INVALID;
            }
            else if($record->password !== $this->genPassword($this->password)) {
                $this->errorCode = self::ERROR_PASSWORD_INVALID;
            }
            else {
                $this->setState('id', $record->id);
                $this->setState('email', $record->email);
                $this->setState('fullname', $record->fullname);
                $this->errorCode = self::ERROR_NONE;
            }
            return !$this->errorCode;
        }
	}
    
    public function genPassword($password) {
        return md5('vinhbt'.$password);
    }
}